98ccb319f5f614e154a8be4ccceec52ea1e40d4d660ad3517a5cb7f9caa78b28 | Triage

Submit
Reports

Overview

overview

Static

static

98ccb319f5...28.exe

windows7-x64

98ccb319f5...28.exe

windows10-2004-x64

Sharing

Copy URL Twitter E-mail

Static task

static1

Behavioral task

behavioral1

Sample

98ccb319f5f614e154a8be4ccceec52ea1e40d4d660ad3517a5cb7f9caa78b28.exe

Resource

win7-20220901-en

pony discovery evasion persistence rat spyware stealer upx

windows7-x64

20 signatures

150 seconds

Behavioral task

behavioral2

Sample

98ccb319f5f614e154a8be4ccceec52ea1e40d4d660ad3517a5cb7f9caa78b28.exe

Resource

win10v2004-20220812-en

pony discovery evasion persistence rat spyware stealer upx

windows10-2004-x64

22 signatures

150 seconds

General

Target

98ccb319f5f614e154a8be4ccceec52ea1e40d4d660ad3517a5cb7f9caa78b28
Size

274KB
MD5

f4a8161d2bf9c1d35952505ce3c5d630
SHA1

4f117da361269be186472748489af9d7dadad54b
SHA256

98ccb319f5f614e154a8be4ccceec52ea1e40d4d660ad3517a5cb7f9caa78b28
SHA512

1899faf82c5116d4c27828f1e075e8afbb6826889266b109429e435d9d5b79aeec44665bf4afcb083f6200c01fe9a2d44d4b63c6f94abe6fe2ee58c1dfd0fa02
SSDEEP

6144:maeACzvpKo3oDY68SLvHseVAoDrxf+2WDzE+T+VWVG8IQbF:mZvph+Y68SLRNDrxf+2uzR+VANIQbF

Score

N/A

Malware Config

Signatures

Files

98ccb319f5f614e154a8be4ccceec52ea1e40d4d660ad3517a5cb7f9caa78b28
.exe windows x86

01de03cea806c0fddf3e08f22b34aebc

Headers

File Characteristics

IMAGE_FILE_EXECUTABLE_IMAGE
IMAGE_FILE_32BIT_MACHINE

Imports

kernel32

GetProcAddress
GlobalGetAtomNameA
GetVersionExA
GetVersionExW
LockResource
LoadLibraryW
GetModuleHandleW
DeleteCriticalSection
InitializeCriticalSection
LoadLibraryA
FreeLibrary
WritePrivateProfileStringW
FindFirstFileW
EnumResourceTypesA
GetTickCount
GlobalSize
MulDiv
MultiByteToWideChar
Sleep
LoadResource
GetPrivateProfileStringW
GetDllDirectoryW
lstrlenW
GetModuleFileNameW
FindClose
GetPrivateProfileIntW
GetLocaleInfoW

shell32

DllGetVersion
ShellExecuteW
SHGetFolderPathW
SHGetPathFromIDListA
ShellExecuteExA
SHFileOperationW
ShellExecuteExW
CommandLineToArgvW
SHGetFileInfoA
SHBrowseForFolderA
Shell_NotifyIconA

ole32

CoTaskMemFree
CoTaskMemAlloc
CoUninitialize

Sections

.text
Size: 130KB - Virtual size: 130KB

IMAGE_SCN_CNT_CODE
IMAGE_SCN_MEM_EXECUTE
IMAGE_SCN_MEM_READ

.rdata
Size: 1KB - Virtual size: 137KB

IMAGE_SCN_CNT_INITIALIZED_DATA
IMAGE_SCN_MEM_READ

.data
Size: 140KB - Virtual size: 140KB

IMAGE_SCN_CNT_INITIALIZED_DATA
IMAGE_SCN_MEM_READ
IMAGE_SCN_MEM_WRITE

.rsrc
Size: 512B - Virtual size: 4KB

IMAGE_SCN_CNT_INITIALIZED_DATA
IMAGE_SCN_MEM_READ

© 2018-2025

Terms | Privacy